I have multiple blans and a trunk port. I have hostname.vlan100 hostname.200 in /etc. then my pf.conf file uses packet tagging to separate the vlan traffic
On Wednesday, August 19, 2015, Dot Yet <dot....@gmail.com> wrote: > Hello, > > I am replacing a Cisco ASA at my home with an openbsd server. I've pf with > nat and some basic rules in place. my internal machines are able to reach > out to the internet with no problems. I've a separate lab network of > servers which are segregated into multiple VLANs. I've been able to create > the various vlans on the openbsd server, but I am not sure how inter-VLAN > routing is suppose to work. The interface layout looks like this: > > em0 - outbound to ISP > em1 - my home network > em2 - member of trunk0 > em3 - member of trunk0 > trunk0 - lacp trunk for my lab network > trunk0.vlan12 - vlan 12 > trunk0.vlan15 - vlan 15 > > So, can one of you help me understand how I can write the pf rules to allow > communication between em1 and vlan 12/15 or communication between vlan 12 > and vlan 15 etc. > > Please let me know. > > Thanks, > dot
